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RECEIVE DATA (EX. BLOCK INFORMATION TABLE KEY Kbit, 
CONTENT KEY Koon) ENCRYPTED WITH SESSION KEY Kses, 
FROM RECORDING AND REPRODUCING DEVICE 


^/S3001 








COMMAND NUMBERS p-s 


f 






RECORDING DEVICE STORES IN REGISTER, DATA 
(EX. BLOCK INFORMATION TABLE KEY Kbit, CONTENT 
KEY Kcon) RECEIVED FROM RECORDING AND REPRODUCING 
DEVICE AND ENCRYPTED WITH SESSION KEY Kses 


^V/S3002 


y 


i 






TAKE DATA (EX. BLOCK INFORMATION TABLE KEY Kbit. 
CONTENT KEY Kcon) ENCRYPTED WITH SESSION KEY Kses 
OUT FROM REGISTER AND DECRYPT THEM WITH 

SESSION KEY Kses 


^^S3003 




r 






USE STORAGE KEY Kstr TO ENCRYPT DATA (EX. BLOCK 
INFORMATION TABLE KEY Kbit, CONTENT KEY Kcon) 
DECRYPTED WITH SESSION KEY Kses 


^-^S3004 
















STORE DATA (EX. BLOCK INFORMATION TABLE KEY Kbit. 
CONTENT KEY Kcon) ENCRYPTED WITH STORAGE KEY Kstr, 
IN MEMORY OF RECORDING DEVICE 


^/S3005 



FIG. 30 
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READ DATA (EX. BLOCK INFORMATION TABLE KEY Kbit. 
CONTENT KEY Kcon) ENCRYPTED WITH STORAGE KEY Kstr, 
oUT FROM MEMORY OF RECORDING DEVICE 






COMMAND NUMBERS u-y 

\ 


t 



'S3101 



STORE IN REGISTER, DATA (EX. BLOCK INFORMATION 
TABLE KEY Kbit, CONTENT KEY Kcon) READ OUT FROM 
MEMORY OF RECORDING DEVICE AND ENCRYPTED WITH 
STORAGE KEY Kstr 



^\^S3102 



TAKE DATA (EX. BLOCK INFORMATION TABLE KEY Kbit, 
CONTENT KEY Kcon) ENCRYPTED WITH STORAGE KEY Kstr, 
OUT FROM REGISTER AN DECRYPT THEM WITH 
STORAGE KEY Kstr 



USE SESSION KEY Kses TO 



^v/S3103 



iNCRYPT DATA (EX. BLOCK 



INFORMATION TABLE KEY Kbit, CONTENT KEY Kcon) 
DECRYPTED WITH STORAGE KEY Kstr 



^v/S3104 



TRANSMIT DATA (EX. BLOCK INFORMATION TABLE KEY Kbit, 
CONTENT KEY Kcon) ENCRYPTED WITH SESSION KEY Kses, 
FROM RECORDING DEVICE TO RECORDING AND 
REPRODUCING DEVICE 



^v/S3105 



FIG. 31 
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G 



FORMAT TYPE 0 AND 1 DOWNLOAD PROCESS 
( START ) 

^yS101 



START 



MUTUAL AUTHENTICATION WITH 
RECORDING DEVICE AND SHARE 
SESSION KEY (SEE FIG. 20) 



SI 02 



READ OUT HEADER 



S103 



GENERATE ICVa' FROM CONTENT 
ID AND USAGE POLICY 



S104 




SI 05 



OBTAIN OR GENERATE 
DISTRIBUTION KEY Kdis 



S106 



DECRYPT BLOCK INFORMATION 
TABLE KEY Kbit AND CONTENT 

KEY Kcon 



S107 



DECRYPT BLOCK INFORMATION TABLE 



S108 



GENERATE ICVb' FROM BLOCK 
INFORMATION TABLE KEY Kbit. 
CONTENT KEY Kcon. AND BLOCK 
INFORMATION TABLE 




S110 



GENERATE INTERMEDIATE 
INTEGRITY CHECK VALUE FROM 
ICVa. ICVb. ICV1. ... ICVN 



S111 



GENERATE TOTAL ICVt' FROM 
NTERMEDIATE INTEGRITY CHECK VALUE 



S112 




^S113 



READ OUT BLOCK DATA 

3 



S114 



DECRYPT BLOCK DATA 
AND GENERATE ICVi* 




S1 17 



ENCRYPT BLOCK INFORMATION 
TABLE KEY Kbit AND CONTENT 
KEY Kcon WITH SESSION KEY 
Kses AND TRANSMIT THEM TO 
RECORDING DEVICE 



S1 18 



RECEIVE BLOCK INFORMATION 
TABLE KEY Kbit AND CONTENT 
KEY Kcon ENCRYPTED WITH 
STORAGE KEY Kses. FROM 
RECORDING DEVICE 




GENERATE UNIQUE INTEGRITY 
CHECK VALUE ICVdev FROM INTER- 
MEDIATE INTEGRITY CHECK VALUE 



SI 2 



FORM DATA FORMAT TO BE STORED 
IN EXTERNAL MEMORY OF 
RECORDING DEVICE 



^S122 



TRANSMIT DATA TO RECORDING 
DEVICE AND STORE THEM IN 
EXTERNAL MEMORY IN DEVICE 



I 



( END ) 



FIG. 39 
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FORMAT TYPE 2 DOWNLOAD PROCESS 



( START ) 



S101 



MUTUAL AUTHENTICATION WITH 
RECORDING DEVICE AND SHARE 
SESSION KEY (SEE FIG. 20) 



^1 



S102 



READ OUT HEADER 



S103 



GENERATE ICVa' FROM CONTENT 
ID AND USAGE POLICY 




S105 



OBTAIN OR GENERATE 
DISTRIBUTION KEY Kdis 



^1 



S106 



DECRYPT BLOCK INFORMATION 
TABLE KEY Kbit AND CONTENT 

KEY Kcon 



S107 



DECRYPT BLOCK INFORMATION TABLE 



SI 08 



GENERATE ICVb' FROM BLOCK 
INFORMATION TABLE KEY Kbit. 
CONTENT KEY Kcon, AND BLOCK 
INFORMATION TABLE 




S152 



GENERATE INTERMEDIATE 
INTEGRITY CHECK VALUE FROM 
ICVa, ICVb. AND CONTENT DATA 



S1 1 1 



GENERATE TOTAL ICVt' 
FROM INTERMEDIATE INTEGRITY 
CHECK VALUE 




ENCRYPT BLOCK INFORMATION 
TABLE KEY Kbit AND CONTENT 
KEY Kcon WITH SESSION KEY 
Kses AND TRANSMIT THEM T 
RECORDING DEVICE 



S118 



RECEIVE BLOCK INFORMATION 
TABLE KEY Kbit AND CONTENT 
KEY Kcon ENCRYPTED WITH 

STORAGE KEY rvses, 
FROM RECORDING DEVICE 




SI 20 



GENERATE UNIQUE INTEGRITY 
CHECK VALUE ICVdev FROM 
INTERMEDIATE INTEGRITY 
CHECK VALUE 



S121 



FORM DATA FORMAT TO BE STORED 
IN EXTERNAL MEMORY OF 
RECORDING DEVICE 



S122 



TRANSMIT DATA TO RECORDING 
DEVICE AND STORE THEM IN 
EXTERNAL MEMORY IN DEVICE 



FIG. 40 
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FORMAT TYPE 3 DOWNLOAD PROCESS 



( START ) 



S101 



MUTUAL AUTHENTICATION WITH 
RECORDING DEVICE AND SHARE 
SESSION KEY (SEE FIG. 20) 



SI 02 



READ OUT HEADER 



S103 



GENERATE ICVa' FROM CONTENT 
ID AND USAGE POLICY 



S104 




SI 05 



OBTAIN OR GENERATE 
DISTRIBUTION KEY Kdis 



SI 61 



DECRYPT BLOCK INFORMATION 
TABLE KEY Kbit 



J2± 



SI 07 



DECRYPT BLOCK INFORMATION TABLE 



SI 62 



GENERATE ICVb' FROM BLOCK 
INFORMATION TABLE KEY Kbit 
AND BLOCK INFORMATION TABLE 




S151 



\ READ OUT ALL CONTENT DATA 



S152 



GENERATE INTERMEDIATE 
INTEGRITY CHECK VALUE FROM 
ICVa, ICVb, AND CONTENT DATA 



■Sill 



GENERATE TOTAL ICVt* FROM 
INTERMEDIATE INTEGRITY 
CHECK VALUE 




ENCRYPT BLOCK INFORMATION 
TABLE KEY Kbit AND BLOCK 
KEY Kbic WITH SESSION KEY 
Kses AND TRANSMIT THEM TO 
RECORDING DEVICE 



S165 



RECEIVE BLOCK INFORMATION 
TABLE KEY Kbit AND BLOCK 
KEY Kblc WITH STORAGE KEY 
Kstr, FROM RECORDING DEVICE 




S120 



GENERATE UNIQUE INTEGRITY 
CHECK VALUE ICVdev FROM 
INTERMEDIATE INTEGRITY 
CHECK VALUE 



SI 21 



FORM DATA FORMAT TO BE 
STORED IN EXTERNAL MEMORY 
OFRECORDING DEVICE 



S122 



TRANSMIT DATA TO RECORDING 
DEVICE AND STORE THEM IN 
EXTERNAL MEMORY IN DEVICE 



( END ) 



FIG. 41 
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FORMAT TYPE 0 REPRODUCTION PROCESS 

C START ) 

* ^S 201 



MUTUAL AUTHENTICATION WITH RECORDING 
DEVICE AND SHARE SESSION KEY 
(SEE FIG. 20) 



/^S202 



READ OUT HEADER 



z^S203 



GENERATE ICVa' FROM CONTENT 
ID AND USAGE POLICY 




TRANSMIT BLOCK INFORMATION TABLE KEY 
Kbit AND CONTENT KEY Keen ENCRYPTED WITH 
STORAGE KEY Kstr.TO RECORDING DEVICE 



± 



^S206 



RECEIVE BLOCK INFORMATION TABLE KEY 
Kbit AND CONTENT KEY Koon ENCRYPTED 
WITH SESSION KEY Kstr, FROM 
RECORDING DEVICE 



^S207 



DECRYPT BLOCK INFORMATION TABLE 
KEY Kbit AND CONTENT KEY Kcon 



^S208 



DECRYPT BLOCK INFORMATION TABLE 



X 



^/S209 



GENERATE ICVb' FROM BLOCK INFORMATION 
TABLE KEY Kbit. CONTENT KEY Kcon, 
AND BLOCK INFORMATION TABLE 




S211 



GENERATE INTERMEDIATE INTEGRITY CHECK 
VALUE FROM ICVa, ICVb, ICV1, . . . ICVN 




GENERATE UNIQUE INTEGRITY CHECK 
VALUE ICVdev' FROM INTERMEDIATE 
INTEGRITY CHECK VALUE 




(A) 



S217 



READ OUT BLOCK DATA 




S219 



S221 



S223 



FORM CONTENT PLAIN TEXT DATA 
FOR EXECUTION (REPRODUCTION) 
ON SYSTEM RAM 




S225 



EXECUTE AND REPRODUCE CONTENT 
(PROGRAM OR DATA) 



(B)- 



( END ) 



S215 



GENERATE TOTAL ICVt' FROM 
INTERMEDIATE INTEGRITY CHECK VALUE 



S216 




FIG. 42 
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FORMAT TYPE 1 REPRODUCTION PROCESS 



C 



START 
I 



J 



S201 



MUTUAL AUTHENTICATION WITH RECORDING 
DEVICE AND SHARESESSION KEY (SEE FIG. 20) 



^202 



READ OUT HEADER 



/^S203 



GENERATE ICVa' FROM CONTENT 
ID AND USAGE POLICY 




TRANSMIT BLOCK INFORMATION TABLE 

KEY Kbit AND CONTENT KEY K«m 
ENCRYPTED WITH STORAGE KEY Kstr.TO 
RECORDING DEVICE 



I 



^S206 



RECEIVE BLOCK INFORMATION TABLE KEY 
Kbit AND CONTENT KEY Kcon ENCRYPTED 
WITH SESSION KEY Kstr, FROM 
RECORDING DEVICE 



X 



^S207 



DECRYPT BLOCK INFORMATION TABLE KEY 
Kbit AND CONTENT KEY Kcon 



^S208 



DECRYPT BLOCK INFORMATION TABLE 



^S209 



GENERATE ICVb* FROM BLOCK INFORMATION 
TABLE KEY Kbit. CONTENT KEY Kcon, 
AND BLOCK INFORMATION TABLE 



S210 




S211 



GENERATE INTERMEDIATE INTEGRITY CHECK 
VALUE FROM ICVa, ICVb. ICV1, ... ICVN 




S213 



GENERATE UNIQUE INTEGRITY 
CHECK VALUE ICVdev' FROM 
INTERMEDIATE INTEGRITY CHECK VALUE 




(A) 



S217 



READ OUT BLOCK DATA 



S231 



DECRYPT ENCRYPTED PARTS AND 
GENERATE PARTS ICV 




FORM CONTENT PLAIN TEXT DATA 
FOR EXECUTION (REPRODUCTION) 
ON SYSTEM RAM 




S225 



EXECUTE AND REPRODUCE CONTENT 
(PROGRAM OR DATA) 



(B)- 



( END ) 



S215 



GENERATE TOTAL ICVt' 
FROM INTERMEDIATE INTEGRITY 
CHECK VALUE 




FIG. 43 
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( START ) 



S201 



MUTUAL AUTHENTICATION WITH 
RECORDING DEVICE AND SHARE 
SESSION KEY (SEE FIG. 20) 



^S202 



READ OUT HEADER 



^S203 



GENERATE ICVa' FROM CONTENT 
ID AND USAGE POLICY 




TRANSMIT BLOCK INFORMATION 
TABLE KEY Kbit AND CONTENT 
KEY Kcon ENCRYPTED WITH 
STORAGE KEY Kstr, TO 
RECORDING DEVICE 



f 



^S206 



RECEIVE BLOCK INFORMATION 
TABLE KEY Kbit AND CONTENT 
KEY Koon ENCRYPTED WITH 
SESSION KEY Kstr, FROM 
RECORDING DEVICE 



^S207 



DECRYPT BLOCK INFORMATION 
TABLE KEY Kbit AND 
CONTENT KEY Kcon 



^S208 



DECRYPT BLOCK INFORMATION TABLE 



^S209 



GENERATE ICVb' FROM BLOCK 
INFORMATION TABLE KEY Kbit. 
CONTENT KEY Kcon, AND BLOCK 
INFORMATION TABLE 




(A) 



S217 



READ OUT BLOCK DATA 



S241 



DECRYPT BLOCK KEY Kbic 



DECRYPT B 



S242 



LOCK DATA 



^1 



S243 



EXECUTE AND REPRODUCE CONTENT 
(PROGRAM OR DATA) 




( END ) 



FIG. 44 
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FORMAT TYPE 3 REPRODUCTION PROCESS 



( START ) 

| ^ 201 



MUTUAL AUTHENTICATION WITH 
RECORDING DEVICE AND SHARE 
SESSION KEY (SEE FIG. 20) 



/^S202 



READ OUT HEADER 



^S203 



GENERATE ICVa' FROM CONTENT 
ID AND USAGE POLICY 



S204 




S251 



TRANSMIT BLOCK INFORMATION 
TABLE KEY Kbit ENCRYPTED 
WITH STORAGE KEY Kstr. 
TO RECORDING DEVICE 



^S252 



RECEIVE BLOCK INFORMATION 

TABLE KEY Kbit ENCRYPTED 
WITH SESSION KEY Kstr, FROM 
RECORDING DEVICE 



x^S253 



DECRYPT BLOCK INFORMATION 
TABLE KEY Kbit 



^S208 



DECRYPT BLOCK INFORMATION TABLE 



/N./S254 



GENERATE ICVb' FROM BLOCK 
INFORMATION TABLE KEY Kbit 
AND BLOCK INFORMATION TABLE 




(A) 



S217 



READ OUT BLOCK DATA 



S255 



TRANSMIT BLOCK KEY Kblc 
ENCRYPTED WITH STORAGE KEY 
Kstr, TO RECORDING DEVICE 



^S256 



RECEIVE BLOCK KEY Kblc 
ENCRYPTED WITH SESSION KEY 
Kses, FROM RECORDING DEVICE 



S257 



DECRYPT BLOCK KEY Kblc 



DECRYPT BLOCK DATA 



S242 



^S243 



EXECUTE AND REPRODUCE 
CONTENT (PROGRAM OR DATA) 




( END ) 



FIG. 45 
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(EX. 



ICV GENERATOR 
CONTENT PROVIDER) 



DATA TO BE VERIFIED 
SUCH AS CONTENT 



DELIVER 



ICV COMMON 
KEY Kiev 



ICV VERIFIER 
(EX. CONTENT USER) 



DATA TO BE VERIFIED 
SUCH AS CONTENT 



ICV GENERATION 

SHARED KEY 
Kiev FOR ICV 



ICV 



DISTRIBUTION 
>- 



ICV 



COMPARISON 
=9 



ICV 



FIG. 46 



ICV GENERATOR 
(EX. CONTENT PROVIDER) 



DATA TO BE VERIFIED 
SUCH AS CONTENT 



DELIVER 



GENERATOR* S 
SECRETE KEY 



ICV CREATION 



ICV 



DELIVER 



ICV VERIFIER 
(EX. CONTENT USER) 



DATA TO BE VERIFIED 
SUCH AS CONTENT 



CALCULATION 



VERIFIED 
VALUE 



GENERATOR' S 
PUBLIC KEY 



|| ? COMPARE 



ICV 



Kpub 

■ 






VERIFIED 




VALUE 


CALCULATE 
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METHOD FOR GENERATING INDIVIDUAL KEY FROM MASTER KEY -(1) 



[BASIC FLOW] 

CONTENT PRODUCER OR MANAGER 

( START PRODUCING CONTENT ) 



I 



S501 



DETERMINE ID FOR CONTENT 
(CONTENT ID) 



S502 



GENERATE KEY 
(EX. DISTRIBUTION Kdis) FROM 
MASTER KEY (EX. DISTRIBUTION- 
KEY-GENERATING MASTER KEY: 
MKdis) AND CONTENT ID 



S503 



ENCRYPT PART OR ALL OF 
CONTENT WITH KEY (EX. 
DISTRIBUTION KEY Kdis) 



1 

( END PRODUCING CONTENT ) 



USER DEVICE 



( START USING CONTENT ) 

^ 



S504 



READ OUT CONTENT ID 



S505 



GENERATE KEY 
(EX. DISTRIBUTION Kdis) FROM 
CONTENT ID AND MASTER KEY 
(EX. DISTRIBUTION-KEY- 
GENERATING MASTER KEY: MKdis) 



S506 



DECRYPT ENCRYPTED PART OF 

CONTENT WITH KEY 
(EX. DISTRIBUTION key Kdis) 



S507 



USE CONTENT 



( END USING CONTENT ) 



[KEY OWNER CONFIGURATION] 
CONTENT PRODUCER OR MANAGER 



USER DEVICE 



MASTER KEY 
(EX. DISTRIBUTION-KEY- 
GENERATING MASTER KEY: MKdis) 



SHARE 



MASTER KEY 
(EX. DISTRIBUTION-KEY 
GENERATING MASTER KEY: MKdis 



CONTENT ID 



ID PROTECTED 
CONTENT 



FIG. 50 
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METHOD FOR GENERATING INDIVIDUAL KEY FROM MASTER KEY -(2) 
[BASIC FLOW] 

CONTENT PRODUCER OR MANAGER USER DEVICE 

( START PRODUCING CONTENT ) 



^S511 



DETERMINE ID FOR CONTENT 
(CONTENT ID) 



S512 



SELECT MASTER KEY MASTER KEY (EX. 

D I STR I BUT I ON-KEY-GENERAT I NG 
MASTER KEY:MKois 1. ... N) 
DEPENDING ON APPARATUS FOR WHICH 

USE OF CONTENT IS PERMITTED 



S513 



GENERATE KEY (EX. DISTRIBUTION- 
KEY-GENERATING MASTER KEY:MKdis 
1. ... n) FROM MASTER KEY (EX. 
D I STR 1 BUT I ON-KEY-GENERAT I NG 
MASTER KEY: MKdis 1, ... n) 
DEPENDENT ON APPARATUS FOR WHICH 
USE OF CONTENT IS PERMITTED 
AS WELL AS CONTENT ID 



J2± 



S514 



GENERATE ENCRYPTED CONTENTS 
C1, ... N FROM PART OR ALL OF 
CONTENT WITH KEY (EX. D I STR I B- 
UTION KEY Kdis 1. ... n) 



S515 



GROUP CONTENT ID. IDENTIFICATION 

INFORMATION FOR MASTER KEY 
USED, AND ENCRYPTED CONTENT INTO 
ONE DISTRIBUTED UNIT 



( END PRODUCING CONTENT ) 

[KEY OWNER CONFIGURATION] 
CONTENT PRODUCER OR MANAGER 



MASTER KEY 
(EX. DISTRIBUTION-KEY- 
GENERATING MASTER KEY: MKdis) 



( START USING CONTENT ~ 

f z_ 

DISTRIBUTED MASTER KEY 
IDENTIFICATION INFORMATION 
HATCH WITH OWNED MASTER KEY?. 



^S517 




READ OUT CONTENT ID 



S518 



GENERATE KEY (EX. DISTRIBUTION 

Kdis) FROM CONTENT ID AND 
MASTER KEY (EX. DISTRIBUTION- 
KEY-GENERATING MASTER KEY: MKdis) 



S519 



DECRYPT ENCRYPTED PART OF 
CONTENT WITH KEY (EX. DISTRIBU- 
TION KEY Kdis) 



S520 



USE CONTENT 



C 



END USING CONTENT 



USER DEVICE 



SHARE 



MASTER KEY 
(EX. DISTRIBUTION-KEY- 
GENERATING MASTER KEY: MKdis) 



CONTENT ID 



ID PROTECTED 
CONTENT 



FIG. 51 
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METHOD FOR GENERATING INDIVIDUAL KEY FROM MASTER KEY -(3) 
[BASIC FLOW] 

MEDIUM PRODUCER OR MANAGER USER DEVICE 



( START PRODUCING MEDIUM") 



DETERMINE ID FOR MED 1 1 
(MEDIUM ID) 



I 



S522 



GENERATE KEY (EX. 
D I STR I BUT I ON-KEY-GENERAT I NG 

MASTER KEY: MKdis) FROM 
MASTER KEY (EX. DISTRIBUTION- 
KEY-GENERATING MASTER KEY: 
MKdis) AND MEDIUM ID 



^1 



S523 



ENCRYPT PART OR ALL OF 
CONTENT WITH KEY (EX. 
DISTRIBUTION KEY Kdis) 



C END PRODUCING MEDIUM ) 



( START USING MEDIUM ) 
| J3S52 4 



READ OUT MED I 



I 



S525 



GENERATE KEY (EX. 
DISTRIBUTION KDIS) FROM 
MEDIUM ID AND MASTER KEY 
(EX. DISTRIBUTION-KEY- 
GENERATING MASTER KEY: MKdis) 



I 



^S52 6 



DECRYPT ENCRYPTED PART OF 
CONTENT WITH KEY (EX. 
DISTRIBUTION KEY Kdis) 



S527 



USE CONTENT 



c 



I 



END USING MEDIUM 



J 



[KEY OWNER CONFIGURATION] 

MEDIA CREATION OR ADMINISTRATOR 



MASTER KEY (EX. 
DISTRIBUTION-KEY- 
GENERATING MASTER KEY: MKdis) 



USER DEVICE 



SHARE 



MASTER KEY (EX. 
DISTRIBUTION-KEY- 
GENERATING MASTER KEY: MKdis) 




FIG. 53 
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METHOD FOR GENERATING INDIVIDUAL KEY FROM MASTER KEY -(4) 
[BASIC FLOW] 

RECORDING AND REPRODUCING DEVICE USER SYSTEM MANAGER 



(START CONTENT STORAGE PROCESS) 



J 



S531 



GENERATE KEY (EX. CONTENT 
KEY: Keen) FROM MASTER KEY 
(EX. CONTENT-KEY-GENERATING 

MASTER KEY: MKcon) AND 
RECORDING AND REPRODUCING 
DEVICE ID 



S532 



ENCRYPT PART OR ALL OF 

CONTENT WITH KEY 
(EX. CONTENT KEY Koon) 



S533 



STORE ENCRYPTED CONTENT IN 
STORAGE MEDIUM 



( END CONTENT STORAGE ) 



C 



START STORED DATA 
RECOVERY PROCESS 



J 



S534 



READ OUT CONTENT ID 



S535 



GENERATE KEY (EX. CONTENT 
Kcon) FROM RECORDING AND 

REPRODUCING DEVICE ID AND 
MASTER KEY (EX. CONTENT-KEY- 
GENERATING MASTER KEY: MKcon) 



S536 



DECRYPT ENCRYPTED PART OF 
CONTENT WITH KEY 
(EX. CONTENT KEY Kcon) 



c 



END STORED DATA 
RECOVERY PROCESS 



[KEY OWNER CONFIGURATION] 

RECORDING AND REPRODUCING DEVICE USER 



MASTER KEY 
(EX. CONTENT-KEY-GENERAT I NG 
MASTER KEY: MKcon) 



SHARE 



SYSTEM MANAGER 



MASTER KEY 
(EX. CONTENT-KEY-GENERAT I NG 
MASTER KEY: MKcon) 



RECORDING AND 
REPRODUCING 
DEVICE ID 



ENCRYPTED 
CONTENT 
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METHOD FOR GENERATING INDIVIDUAL KEY FROM MASTER KEY 
[BASIC FLOW] 



(5) 



SLAVE DEVICE 
(EX. RECORDING DEVICE) 



HOST DEVICE 
(EX. RECORDING AND REPRODUCING DEVICE) 



C 



START SLAVE DEVICE 
NITIALIZATION PROCESS 



^S541 



GENERATE KEY 
KEX. AUTHENTICATION KEY: Kake) 
FROM MASTER KEY (EX. 
AUTHENTICATION-KEY- 
GENERATING MASTER KEY: MKake) 
AND SLAVE DEVICE ID 



^1 



S542 



STORE AUTHENTICATION KEY IN 

INTERNAL MEMORY OF SLAVE 
DEVICE (EX. CONTENT KEY Kcon) 



c 



END SLAVE DEVICE 
INITIALIZATION PROCESS 



J 



START MUTUAL 
AUTHENTICATION PROCESS 



S543 



READ OUT SLAVE DEVICE ID 



S544 



GENERATE KEY (EX. 
AUTHENTICATION KAKE) FROM 
SLAVE DEVICE ID AND MASTER 
KEY (EX. AUTHENTICATION-KEY- 
GENERATING MASTER KEY: MKake) 



S545 



EXECUTE AUTHENTICATION 
PROCESS WITH KEY (EX. 
AUTHENTICATION KEY Kake) 
(SEE FIG. 20) 



C 



I 



END MUTUAL 
AUTHENTICATION PROCESS 



[KEY OWNER CONFIGURATION] 

SLAVE DEVICE 
(EX. RECORDING DEVICE) 



MASTER KEY 
(EX. AUTHENTICATION-KEY- 
GENERATING MASTER KEY: MKake) 



(EX. 



HOST DEVICE 
RECORDING AND REPRODUCING DEVICE) 



SHARE 



MASTER KEY 
(EX. AUTHENTICATION-KEY- 
GENERATING MASTER KEY: MKake) 



SLAVE 
DEVICE ID 



AUTHENTICATION 
KEY 



FIG. 55 
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METHOD FOR GENERATING INDIVIDUAL KEY FROM MASTER KEY -(5) 



RECORDING AND REPRODUCING 
DEVICE 300 SIDE PROCESS 



RECORDING DEVICE 400 
SIDE PROCESS 



EXECUTE AUTHENTICATION AND 
GENERATE SESSION KEY Kses 



AUTHENTICATION PROCESS & 
CREATION OF SESSION KEY Kses 



!S302> 



GENERATE AND COLLATE EACH 
INTEGRITY CHECK VALUE ICV 



:S303, 



DECRYPT CONTENT KEY Kc1,Kc2, 
(Kc3) ENCRYPTED WITH 
DISTRIBUTION KEY Kdis 



:S304> 



ENCRYPT CONTENT KEY Kc1 WITH 
SESSION KEY Kses AND TRANSMIT 
IT TO STORAGE DEVICE 



S307, 



ENCRYPT CONTENT KEY Kc2 WITH 
SESSION KEY Kses AND TRANSMIT 
IT TO STORAGE DEVICE 



IS310 



ENCRYPT CONTENT KEY Kc3 WITH 
SESSION KEY Kses AND TRANSMIT 
IT TO STORAGE DEVICE 



1S313. 



FORM AND TRANSMIT DATA 
FORMAT TO RECORDING DEVICE 



S301 



.S305 



DECRYPT CONTENT KEY Kc1 
WITH SESSION KEY Kses 



.S306 



ENCRYPT CONTENT KEY Kc1 WITH 
STORAGE KEY Kstr AND TRANSMIT 
IT TO RECORDING DEVICE 



.S308 



DECRYPT CONTENT KEY Kc2 WITH 
SESSION KEY Kses 



.S309 



ENCRYPT CONTENT KEY Kc2 WITH 
STORAGE KEY KSTR AND TRANSMIT 
IT TO RECORDING DEVICE 



.S311 



DECRYPT CONTENT KEY Kc3 WITH 
SESSION KEY Ixses 



I 

nt 



S312 



ENCRYPT CONTENT KEY Kc3 WITH 
STORAGE KEY Kstr AND TRANSMIT 
IT TO RECORDING DEVICE 



,S314 




STORE CONTENT KEY: Kcl,Kc2 
(Kc3) ENCRYPTED WITH STORAGE 
KEY Kstr IN EXTERNAL MEMORY 
OF RECORDING DEVICE 



F 



IG. 56 
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C START ) 





, ^S611 


AUTHENTICATE EACH INSTALLED 
RECORDING DEVICE (SEE FIG. 20) 




\ 


f ^S612 


EXTRACT ACTIVE PROGRAMS (WHOSE CONTENT 
TYPE IS PROGRAM) FROM STORAGE MEDIUM OF 
AUTHENTICATED RECORDING DEVICE 






f ^^0/5613 


SELECT ONE OF EXTRACTED ACTIVE PROGRAMS 
WHICH HAS HIGHEST PRIORITY INFORMATION 








ACTIVATE SELECTED PROGRAM 




\ 


t 





y 

C END ) 



FIG. 57 
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( START ) 



S621 



AUTHENTICATE INSTALLED RECORDING 
DEVICE (i) (SEE FIG. 20) 




S628v^ 



S623 



RETRIEVE ACTIVE PROGRAMS (WHOSE 
CONTENT TYPE IS PROGRAM) FROM 
STORAGE MEDIUM OF AUTHENTICATED 
RECORDING DEVICE 



S624 



MNY ACTIVE PROGRAM (WHOSE CONTENT 
'TYPE IS PROGRAM) IN STORAGE MEDIUM 
OF AUTHENTICATED RECORDING 
DEVICE? 




I = i+1 
A 



S627 



RETRIEVAL OF CONTENT \ N0 
FROM INSTALLED RECORDING 
DEVICE COMPLETED? 



\ 


YES 

r 


^S625 


SELECT ONE OF EXTRACTED ACTIVE 
PROGRAMS WHICH HAS HIGHEST PRIORI 
■ INFORMATION 


TY 




\ 


r 


^S626 


ACTIVATE SELECTED PROGRAM 





( END ) 




YES 
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( START ) 



\ 




AUTHENTICATE EACH INSTALLED 
RECORDING DEVICE (SEE FIG. 20) 




1 


f / -^S652 


EXTRACT ACTIVE PROGRAMS (WHOSE CONTENT 
TYPE IS PROGRAM) FROM STORAGE MEDIUM OF 
AUTHENTICATED RECORDING DEVICE 






f / ^>_/S653 


DISPLAY EXTRACTED ACTIVE PROGRAMS 
ON DISPLAY MEANS 




\ 


f / ^/S654 


RECEIVE SELECTION INPUT 
FROM USER 




\ 


f /-V/S655 


ACTIVATE USER SELECTED PROGRAM 





( END ) 



FIG. 59 



58/93 



09/937509 



ER 














—j 












in 










LU 
CO 
ZD 






o 
















CD 










MT 
IN 1 




UJ 




CD 




CO 


o 





























o 
o 

CO 

2 



o — - 



33 i 



UJ 



o 
o 

CO 



CD 























O 










UT 






Q 
2 


i_ 



CM 

o 

"<Z> 
CO 



LU 

co 

CO 
CO 
LU 

o 



o 
o> 


^3091 


IALYSIS 
ON 




DATA 
STORAGE 
SECTION 






o 

CO 






-=co — 
zcoo 

OCOLU 
UU CO 












ORY 




LU*^ 




PROGRAM 
STORAGE 
SECTION 




CO Q£ 
CO Q_ CO 
LUZSCO 
QIOLU 
Q_ CJ> CJD 


LU 
2E 




g 




CO 


SUJO 

ooo: 

C_3 Q_ 




CO 



CD 



O 
CO 







o o 












OLU 




C3 CO 






t t 





59/93 



09/937509 




09/937509 



C 



START DATA 
REPRODUCTION PROCESS 



5 



S671 



DISPLAY ON MONITOR, 
REPRODUCED DATA INFORMATION PRESENT 
IN MEMORY (EX. TITLES) 



S672 



RECEIVE DATA SELECTED BY USER 
FROM REPRODUCED DATA INFORMATION 
DISPLAYED ON MONITOR 



S673 



SELECT DATA FROM MEMORY IN ACCORDANCE 
WITH USER' S SELECTION AND EXECUTE 
REPRODUCTION (DECOMPRESSION) PROCESS 



G 



END 

REPRODUCTI 



DATA 

ON PROCESS 



FIG. 62 
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START DATA 
REPRODUCTION PROCESS 



) 



S675 



DISPLAY ON MONITOR, 
REPRODUCED DATA INFORMATION PRESENT 
IN MEMORY (EX. TITLES) 



I 



S676 



RECEIVE DATA SELECTED BY USER 
FROM REPRODUCED DATA INFORMATION 
DISPLAYED ON MONITOR 



S677 



RETRIEVE REPRODUCED PROGRAM 
DEPENDENT ON DATA SELECTED BY USER, 
FROM MEMORY OR PROGRAM PROVIDING MEANS 
ACCESSIBLE TO REPRODUCTION APPARATUS 




EXTRACT DATA FROM MEMORY IN ACCORDANCE 
WITH USER' S SELECTION AND EXECUTE 
REPRODUCTION (DECOMPRESSION) PROCESS 



C 



END DATA 
REPRODUCTION PROCESS 



0 



FIG. 64 
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c 



START DATA 
REPRODUCTION PROCESS 



) 



S681 



SET AS RETRIEVAL LIST, 
REPRODUCED DATA INFORMATION PRESENT 
IN MEMORY (EX. TITLES) 



S682 



SELECT HIGH PRIORITY DATA 
FROM RETRIEVAL LIST 



S683 



SELECT DATA FROM MEMORY IN ACCORDANCE 

WITH USER' S SELECT I ONAND EXECUTE 
REPRODUCTION (DECOMPRESSION) PROCESS 



END DATA 
REPRODUCTION PROCESS 



) 



FIG. 66 
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c 



START DATA 
REPRODUCTION PROCESS 



) 



S691 



SET AS RETRIEVAL LIST, REPRODUCED DATA 
INFORMATION PRESENT IN MEMORY (EX. TITLES) 



S692 



SELECT HIGH PRIORITY DATA FROM 
RETRIEVAL LIST 



S693 



RETRIEVE REPRODUCED PROGRAM DEPENDENT ON 
DATA SELECTED BY USER, FROM MEMORY OR 
PROGRAM PROVIDING MEANS ACCESSIBLE TO 
REPRODUCTION APPARATUS 




S696 



DELETE FROM RETRIEVAL 
LIST DATA TO WHICH SAME 
PROGRAM IS APPLIED 



EXTRACT DATA FROM MEMORY IN ACCORDANCE 
WITH USER' S SELECTION AND EXECUTE 
REPRODUCTION (DECOMPRESSION) PROCESS 



^ END 




DATA REPRODUCTION 
PROCESS 



FIG. 68 
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(1) EXAMPLE OF SAVE DATA STORAGE PROCESS USING CONTENT UNIQUE KEY CONTENT 

OR SYSTEM COMMON KEY 



( START SAVE DATA "A 
STORAGE PROCESS J 

| ^S701 

READ OUT CONTENT ID (EX. GAME ID) 



v ^S707 

READ SYSTEM COMMON KEY 
(EX. SYSTEM SIGNATURE 
KEY Ksys) OUT FROM 
RECORDING AND REPRODUCING 
DEVICE AND GENERATE SAVE 
DATA ENCRYPTION KEY Ksave 
BASED ON SYSTEM COMMON KEY 
(EX. SYSTEM SIGNATURE KEY) 



^S704 



ENCRYPT SAVE DATA WITH SAVE DATA 
ENCRYPTION KEY Ksav 


•6 


\ 


r ,^S705 


STORE ENCRYPTED SAVE DATA IN 
RECORDING DEVICE 




\ 


r ^S706 


WRITE CONTENT IDENTIFIER (GAME ID) AND 
PROGRAM LOCALIZATION (YES/NO) TO DATA 
MANAGING FILE 





+ 

f END SAVE DATA "\ 
STORAGE PROCESS J 




S703 



READ CONTENT UNIQUE KEY (EX. CONTENT 
KEY Kcon) OUT FROM CONTENT DATA AND 
GENERATE SAVE DATA ENCRYPTION KEY Ksave 
BASED ON CONTENT UNIQUE KEY 
(EX. CONTENT KEY) 



FIG. 70 
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(2) EXAMPLE OF SAVE DATA REPRODUCTION PROCESS USING CONTENT UNIQUE KEY 

OR SYSTEM COMMON KEY 



C 



START SAVE DATA 
REPRODUCTION PROCESS 



) 







READ OUT CONTENT 


ID (EX. GAME ID) 


\ 




READ CONTENT ID (ID) AND PROGRAM 
LOCALIZATION (YES/NO) OUT FROM 
DATA MANAGING FILE 



S711 



S712 




S714 



READ KEY UNIQUE TO CONTENT (EX. CONTENT 

KEY Kcon) OUT FROM CONTENT DATA AND 
GENERATE SAVE DATA DECRYPTION KEY Ksave 
BASED ON KEY UNIQUE TO CONTENT 
(EX. CONTENT KEY) 



1 




DECRYPT SAVE DATA WITH SAVE DATA 
DECRYPTION KEY Ksav 


l 




REPRODUCE AND EXECUTE DECRYPTED SAVE DATA 
IN RECORDING DEVICE 



S715 



S717 



READ SYSTEM COMMON KEY 
(EX. SYSTEM SIGNATURE KEY 
Ksys) OUT FROM RECORDING 
AND REPRODUCING DEVICE AND 

GENERATE SAVE DATA 
DECRYPTION KEY KSAVE BASED 

ON SYSTEM COMMON KEY 
(EX. SYSTEM SIGNATURE KEY) 



S716 



C 



END SAVE DATA 
REPRODUCTION PROCESS 



) 



FIG. 72 
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(3) EXAMPLE OF SAVE DATA STORAGE PROCESS USING CONTENT ID OR 

SYSTEM COMMON KEY 



c 



START SAVE DATA 
STORAGE PROCESS 



) 




S721 



READ CONTENT ID (EX. GAME ID) OUT FROM 

CONTENT DATA AND GENERATE SAVE DATA 
ENCRYPTION KEY KSAVE BASED ON CONTENT ID 
(EX. GAME ID) 




r /-v 


ENCRYPT SAVE DATA WITH SAVE DATA 
ENCRYPTION KEY Ksav 


> 


r ^ 


STORE ENCRYPTED SAVE DATA IN 
RECORDING DEVICE 






WRITE CONTENT ID (GAME ID) AND PROGRAM 
LOCALIZATION (YES/NO) TO DATA 
MANAGING FILE 







S723 



S727 



READ SYSTEM COMMON KEY 
(EX. SYSTEM SIGNATURE KEY 
Ksys) OUT FROM RECORDING 
AND REPRODUCING DEVICE AND 

GENERATE SAVE DATA 
ENCRYPTION KEY KSAVE BASED 

ON SYSTEM COMMON KEY 
(EX. SYSTEM SIGNATURE KEY) 



C 



END SAVE DATA 
STORAGE PROCESS 
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(4) EXAMPLE OF SAVE DATA REPRODUCTION PROCESS USING CONTENT ID OR 

SYSTEM COMMON KEY 



C 



START SAVE DATA 
REPRODUCTION PROCESS 



S731 



READ OUT CONTENT ID (EX. GAME ID) 



S732 



READ CONTENT ID (GAME ID) AND PROGRAM 
LOCALIZATION (YES/NO) OUT FROM DATA 
- MANAGING FILE 




S734 



READ KEY CONTENT ID (EX. GAME ID) OUT 
FROM CONTENT DATA AND GENERATE SAVE 
DATA DECRYPTION KEY Ksav BASED ON 
CONTENT ID (EX. GAME ID) 



S735 



DECRYPT SAVE DATA WITH SAVE DATA 
ENCRYPTION KEY Ksav 



^1 



S737 



READ SYSTEM COMMON KEY 
(EX. SYSTEM SIGNATURE KEY 
Ksys) OUT FROM RECORDING 
AND REPRODUCING DEVICE AND 

GENERATE SAVE DATA 
DECRYPTION KEY KSAVE BASED 
ON SYSTEM COMMON KEY (EX. 
SYSTEM SIGNATURE KEY) 



^S736 



REPRODUCE AND EXECUTE DECRYPTED SAVE DATA 
FROM RECORDING AND REPRODUCING DEVICE 



c 



END SAVE DATA 
REPRODUCTION PROCESS 



) 



FIG. 74 
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(5) EXAMPLE OF SAVE DATA STORAGE PROCESS USING RECORDING AND 
REPRODUCING DEVICE UNIQUE KEY OR SYSTEM COMMON KEY 



C 



END SAVE DATA 
STORAGE PROCESS 



) 




S741 



S743 



READ RECORDING AND REPRODUCING DEVICE 

UNIQUE KEY (EX. RECORDING AND 
REPRODUCING DEVICE SIGNATURE KEY Kdev) 
OUT FROM RECORDING AND REPRODUCING DEVICE 
AND GENERATE SAVE DATA ENCRYPTION KEY 
Ksave BASED ON RECORDING AND REPRODUCING 
DEVICE UNIQUE KEY (EX. RECORDING AND 
REPRODUCING DEVICE SIGNATURE KEY) 



S747 



READ SYSTEM COMMON KEY 
(EX. SYSTEM SIGNATURE KEY 
Ksys) OUT FROM RECORDING 
AND REPRODUCING DEVICE AND 

GENERATE SAVE DATA 
ENCRYPTION KEY Ksave BASED 
ON SYSTEM COMMON KEY (EX. 
SYSTEM SIGNATURE KEY) 



•S744 



ENCRYPT SAVE DATA WITH SAVE 
DATA ENCRYPTION KEY Ksav 



S745 



STORE ENCRYPTED SAVE DATA 
IN RECORDING DEVICE 



^S746 



WRITE CONTENT IDENTIFIER (GAME ID), 
RECORDING AND REPRODUCING DEVICE ID, 
AND RECORDING AND REPRODUCING DEVICE 
LOCALIZATION (YES/NO) TO DATA 
MANAGING FILE 



C 



START SAVE DATA 
STORAGE PROCESS 



J 



FIG. 75 
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(6) EXAMPLE OF SAVE DATA REPRODUCTION PROCESS USING RECORDING AND 
REPRODUCING DEVICE UNIQUE KEY OR SYSTEM COMMON KEY 



G 



START SAVE DATA 
REPRODUCTION PROCESS 



0 



^S751 



END SAVE DATA REPRODUCTION PROCESS 



^S752 



READ OUT RECORDING AND REPRODUCING 
DEVICE ID (IDdev) 



S753 



READ CONTENT ID (GAME ID), RECORDING AND 
REPRODUCING DEVICE ID, AND RECORDING AND 
REPRODUCING DEVICE LOCALIZATION (YES/NO) 
OUT FROM DATA MANAGING FILE (PROCESS, 
HOWEVER, IS ENDED IF RECORDING AND 
REPRODUCING DEVICE ID DOES NOT MATCH IN 
SETTINGS FOR RECORDING AND REPRODUCING 
DEVICE LOCALIZATION) 




S755 



READ RECORDING AND REPRODUCING DEVICE 
UNIQUE KEY (EX. RECORDING AND REPRODUCING 
DEVICE SIGNATURE KEY KDEV) OUT FROM 
RECORDING AND REPRODUCING DEVICE AND 
GENERATE SAVE DATA DECRYPTION KEY Ksave 
BASED ON RECORDING AND REPRODUCING DEVICE 
UNIQUE KEY (EX. RECORDING AND REPRODUCING 
DEVICE SIGNATURE KEY) 



\ 


r ^ 


DECRYPT SAVE DATA WITH SAVE 
DATA DECRYPTION KEY Ksav 






REPRODUCE AND EXECUTE DECRYPTED SAVE DATA 
IN RECORDING AND REPRODUCING DEVICE 



^S758 



READ SYSTEM COMMON KEY 
(EX. SYSTEM SIGNATURE KEY 
Ksy S ) OUT FROM RECORDING 
AND REPRODUCING DEVICE AND 

GENERATE SAVE DATA 
ENCRYPTION KEY KSAVE BASED 
ON SYSTEM COMMON KEY (EX. 
SYSTEM SIGNATURE KEY) 



/S756 



S757 



c 



END SAVE DATA 
REPRODUCTION PROCESS 



0 
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(7) EXAMPLE OF SAVE DATA STORAGE PROCESS USING RECORDING AND REPRODUCING 

DEVICE ID OR SYSTEM COMMON KEY 



C 



START SAVE DATA 
STORAGE PROCESS 







READ OUT CONTENT 


ID (EX. GAME ID) 




r ^ 


READ OUT RECORDING AND 


REPRODUCING DEVICE ID (IDdev) 



S761 



S762 



/S763 

recording and~ 
reproducing device local i zat i of] 
jo be executed?^ 

[yes 



NO 



^S764 



GENERATE SAVE DATA ENCRYPTION KEY KSAVE 

BASED ON READ-OUT RECORDING AND 
REPRODUCING DEVICE ID (IDdev) READ OUT 
FROM RECORDING AND REPRODUCING DEVICE 



S768 



READ SYSTEM COMMON KEY 
(EX. SYSTEM SIGNATURE KEY 
Ksys) OUT FROM RECORDING 
AND REPRODUCING DEVICE AND 

GENERATE SAVE DATA 
ENCRYPTION KEY Ksave BASED 
ON SYSTEM COMMON KEY (EX. 
SYSTEM SIGNATURE KEY) 



S765 



ENCRYPT SAVE [ 
DATA ENCRYP1 


)ATA WITH SAVE 
"ION KEY Ksav 








STORE ENCRYPTED SAVE DATA IN 
RECORDING DEVICE 




i 





,S766 



✓S767 



WRITE CONTENT ID (GAME ID) , RECORDING AND 
REPRODUCING DEVICE ID. AND RECORDING AND 
REPRODUCING DEVICE LOCALIZATION (YES/NO) 
TO DATA MANAGING FILE 



C 



END SAVE DATA 
STORAGE PROCESS 
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(8) EXAMPLE OF SAVE DATA REPRODUCTION PROCESS USING RECORDING AND 
REPRODUCING DEVICE ID OR SYSTEM COMMON KEY 



c 



START SAVE DATA 
REPRODUCTION PROCESS 



) 



READ OUT CONTENT 


ID (EX. GAME ID) 




r ^ 


READ OUT RECORDING AND 
REPRODUCING DEVICE ID (IDdev) 







S771 



S772 



S773 



READ CONTENT ID (GAME I D) , RECORD I NG AND 
REPRODUCING DEVICE ID. AND RECORDING AND 
REPRODUCING DEVICE LOCALIZATION (YES/NO) 
OUT FROM DATA MANAGING FILE 
(PROCESS, HOWEVER, IS ENDED IF RECORDING 
AND REPRODUCING DEVICE ID DOES NOT MATCH 
IN SETTINGS FOR RECORDING AND REPRODUCING 
DEVICE LOCALIZATION) 




S775 



GENERATE SAVE DATA DECRYPTION KEY KSAVE 
BASED ON RECORDING AND REPRODUCING DEVICE 
(IDdev) READ-OUT FROM RECORDING AND 
REPRODUCING DEVICE ID (IDdev) 



S776 



S778 



READ SYSTEM COMMON KEY 
(EX. SYSTEM SIGNATURE KEY 
K sys ) OUT FROM RECORDING 
AND REPRODUCING DEVICE AND 

GENERATE SAVE DATA 
DECRYPTION KEY Ksave BASED 
ON SYSTEM COMMON KEY (EX. 
SYSTEM SIGNATURE KEY) 



DECRYPT SAVE DATA WITH SAVE DATA 
ENCRYPTION KEY Ksav 



S777 



REPRODUCE AND EXECUTE DECRYPTED SAVE DATA 
IN RECORDING AND REPRODUCING DEVICE 



c 



END SAVE DATA 
REPRODUCTION PROCESS 
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(11) EXAMPLE OF SAVE DATA STORAGE PROCESS USING USER PASSWORD OR 

SYSTEM COMMON KEY 



c 



START SAVE DATA 
STORAGE PROCESS 



3 



/S821 



^S822 

USER PROGRAl 
LOCALIZATION TO BE 
EXECUTED^ 



NO 



INPUT USER PASSWORD 


\ 




GENERATE SAVE DATA ENCRYPTION KEY Ksav 
BASED ON USER PASSWORD 


\ 


t ^ 


ENCRYPT SAVE DATA WITH SAVE DATA 
ENCRYPTION KEY Ksav 


\ 




STORE ENCRYPTED 


\ 




WRITE CONTENT ID (GAME 1 D) , RECORD 1 NG 
AND REPRODUCING DEVICE ID. AND USER 
PROGRAM LOCALIZATION (YES/NO) TO DATA 
MANAGING FILE 




t 



S823 



S828 



READ SYSTEM COMMON KEY 
(EX. SYSTEM SIGNATURE KEY 
Ksys) OUT FROM RECORDING 
AND REPRODUCING DEVICE AND 

GENERATE SAVE DATA 
ENCRYPTION KEY Ksav BASED 
ON SYSTEM COMMON KEY (EX. 
SYST EM SIGNATURE KEY) 

I 



C 



END SAVE DATA 
STORAGE PROCESS 



) 
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(12) EXAMPLE OF SAVE DATA REPRODUCTION PROCESS USING USER PASSWORD OR 

SYSTEM COMMON KEY 



C 



START SAVE DATA 
REPRODUCTION PROCESS 



) 



S831 



READ OUT CONTENT ID (EX. GAME ID) 



S832 



READ CONTENT ID (GAME ID) AND USER 
PROGRAM LOCALIZATION (YES/NO) OUT FROM 
DATA MANAGING FILE 



^^8833 

OS"ER PROGRAIS. 
LOCALIZATION TO BE 
EXECUTED? 



✓S834 



INPUT USER PASSWORD 




\ 


t /v/S835 


GENERATE SAVE DATA DECRYPTION KEY 
Ksav BASED ON USER PASSWORD 




\ 


r /^xS836 


DECRYPT SAVE DATA WITH SAVE DATA 


< 


DECRYPTION KEY Ksav 






r ^ 


S836 


REPRODUCE AND EXECUTE DECRYPTED DATA 
FROM RECORDING AND REPRODUCING DEVICE 






t 





^837 



READ SYSTEM COMMON KEY 
(EX. SYSTEM SIGNATURE KEY 
Ksys) OUT FROM RECORDING 
AND REPRODUCING DEVICE AND 

GENERATE SAVE DATA 
DECRYPTION KEY Ksav BASED 

ON SYSTEM COMMON KEY 
(EX. SYSTEM SIGNATURE KEY) 



J 



C 



END SAVE DATA 
REPRODUCTION PROCESS 
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PROVIDE CONTENT FROM MEDIUM 
(DVD. CD. OR THE LIKE) 



( START ) 



PROVIDE CONTENT 
FROM NETWORK 

C START ~~) 



S901 



REQUEST MEDIUM TO PROVIDE CONTENT 



•S902 



S911 



ESTABLISH COMMUNICATION SESSION 
WITH DELIVERY SERVICE SIDE 



OBTAIN REVOCATION LIST INFORMATION 



S903 



EXECUTE REVOCATION LIST INTEGRITY 
ICHECK VALUE ICVrev VERIFYING PROCESS 




■S905 



GENERATE INTERMEDIATE INTEGRITY 
CHECK VALUE ICVt' FROM REVOCATION 
LIST INTEGRITY CHECK VALUE ICVrev 
AND PARTIAL INTEGRITY CHECK VALUE 

IN CONTENT DATA TO EXECUTE 
INTERMEDIATE INTEGRITY CHECK VALUE 
VERIFYING PROCESS 




YES 



S909 



ERROR 



^1 



S908 



( END ) 



START NORMAL PROCESS 
(EX. PROGRAM EXECUTING PROCESS) 



FIG. 87 
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PROVIDE CONTENT FROM RECORDING 
DEVICE (MEM ORY CARD OR THE LIKE) 

( START ) 



£ ^S92 1 

MUTUAL AUTHENTICATION 
PROCESS (SEE FIG. 20) 




if ^S92 4 

EXECUTE REVOCATION LIST INTEGRITY 
CHECK VALUE ICVREV VERIFYING PROCESS 




S926 



GENERATE INTERMEDIATE INTEGRITY 
CHECK VALUE ICVt' FROM REVOCATION 
LIST INTEGRITY CHECK VALUE ICVrev 
AND PARTIAL INTEGRITY CHECK VALUE 

IN CONTENT DATA TO EXECUTE 
INTERMEDIATE INTEGRITY CHECK VALUE 
VERIFYING PROCESS 




START NORMAL PROCESS 
(EX. PROGRAM EXECUTING PROCESS) 



FIG. 88 
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SECURITY CHIP 
MANUFACTURING PROCESS FLOW 



( START ) 



1 




SET DATA WRITE OR READ MODE 






EXECUTE AUTHENTICATION 


PROCESS BASED ON CHIP STORAGE 


COMPLETION 


INFORMATION 



S951 



S952 




READ 



WRITE 



S955 



EXECUTE DATA 
WRITE PROCESS 



■c 



ABORT PROCESS 



J 



S956 



EXECUTE DATA 
READ PROCESS 



END DATA WRITE OR READ PROCESS 



ss) 
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ABORT PROCESS 



OUTPUT TO PROCESS SECTION, A COMMAND FOR 
WRITE OF SECRET DATA TO WRITE ONLY (WO) AREA 
AND OF CHECKING DATA TO READ AND WRITE (RW) 
AREA 



I 



S964 



PROCESS SECTION WRITES SECRET DATA TO WRITE 
ONLY (WO) AREA AND CHECKS DATA TO READ AND 
WRITE (RW) AREA FOR EXECUTION 



c 



END DATA 
WRITE PROCESS 



J 



FIG. 92 
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' START PROCESS FOR CHECKING^ 
SECRET DATA WRITTEN TO WRITE 
v ONLY (WO) AREA 



^S97 1 



PROCESS SECTION EXECUTES CRYPTOGRAPH 
PROCESS USING SECRET DATA WRITTEN 
TO WRITE ONLY (WO) AREA 



S972 



RECEIVE RESULT OF 
CRYPTOGRAPHY PROCESS 



COMPARE RESULT OF CRYPTOGRAPHY 
PROCESS USING SECRET DATA (AFTER 
AUTHENTICATION) WRITTEN TO WRITE 
ONLY (WO) AREA WITH RESULT OF 
CRYPTOGRAPH PROCESS EXECUTED 
BY PROCESS SECTION 




ABORT PROCESS 



J 



c 



END DATA CHECKING 
PROCESS 
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Explanation of Reference Numerals 
106. . .main CPU, 107... RAM, 108... ROM, 109 .AV process section, 
110. . .Input process section, 111...PIO, 112... SIO, 300 .recording 
and reproducing device, 301 ... control section, 302 ... cryptography 
process section, 303 ... recording device controller, 304... read 
section, 305 . . . communication section, 306 .. .control section, 
' 307. . .internal memory, 308. . .encryption/decryption section, 
400. . .recording device, 401. . .cryptography process section, 
4 02 .external memory, 403 ... control section, 404 ... communication 
section, 405 ... internal memory, 406 ... encryption/decryption 
section, 407 ... external memory control section, 500 .medium, 
600. . .communication means, 2101, 2102, 2 103 ... recording and 
reproducing device, 2104, 2105, 2106 ... recording device, 
2901 .. .command number managing section, 2902 ... command register, 
2903, 2904. . .authentication flag, 3001 ... speaker, 3002 .. .monitor, 

3090 memory, 3091 ... content analysis section, 3092... data 

storage section, 3093 .. .program storage section, 

3094 .. .compression decompression process section, 7701 ... content 
data, 7702. . .revocation list, 7703... list check value, 
8000. . .security chip, 8001 .. .process section, 8002 ... storage 
section, 8003... mode signal line, 8004 ... command signal line, 
8201 read write area, 8202... write only area. 
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